Forum latest

Black Hats spotlight browser-based OS attacks
Written by Gizmo   
Sunday, 10 August 2008 12:37

At the Black Hat conference, two researchers (Alexander Sotirov and Mark Dowd) show how to compromise virtually any version of Windows, including Microsoft's much touted and 'most secure Windows ever' Windows Vista.  While figuring out exactly how to go about it wasn't terribly easy, it turns out that the actual exploits are relatively easy, and can be invoked ENTIRELY WITHIN YOUR BROWSER.

Worse, though, is that fact that these exploits can be used against potentially ANY OS, INCLUDING Linux, owing ot the fact that they run entirely within the browser, and can be invoked from Flash, Javascript, and/or Java applets.

For the curious, the discussion paper can be found here.

Don't Click Here Don't Click Here Either